luxolus
/
open-consul
2
0
Fork 0
Code Issues 1 Pull Requests Packages Releases Wiki Activity
14,237 Commits 1 Branch 1 Tag 358 MiB
Go 62%
MDX 17.7%
SCSS 11%
JavaScript 4.7%
Handlebars 2%
Other 2.4%
Go to file
R.B. Boyer 91bee6246f
Support Incremental xDS mode (#9855) 
This adds support for the Incremental xDS protocol when using xDS v3. This is best reviewed commit-by-commit and will not be squashed when merged.

Union of all commit messages follows to give an overarching summary:

xds: exclusively support incremental xDS when using xDS v3

Attempts to use SoTW via v3 will fail, much like attempts to use incremental via v2 will fail.
Work around a strange older envoy behavior involving empty CDS responses over incremental xDS.
xds: various cleanups and refactors that don't strictly concern the addition of incremental xDS support

Dissolve the connectionInfo struct in favor of per-connection ResourceGenerators instead.
Do a better job of ensuring the xds code uses a well configured logger that accurately describes the connected client.
xds: pull out checkStreamACLs method in advance of a later commit

xds: rewrite SoTW xDS protocol tests to use protobufs rather than hand-rolled json strings

In the test we very lightly reuse some of the more boring protobuf construction helper code that is also technically under test. The important thing of the protocol tests is testing the protocol. The actual inputs and outputs are largely already handled by the xds golden output tests now so these protocol tests don't have to do double-duty.

This also updates the SoTW protocol test to exclusively use xDS v2 which is the only variant of SoTW that will be supported in Consul 1.10.

xds: default xds.Server.AuthCheckFrequency at use-time instead of construction-time
 		2021-04-29 13:54:05 -05:00
.changelog Support Incremental xDS mode (#9855) 2021-04-29 13:54:05 -05:00
.circleci remove Codecov from CI runs (#10145) 2021-04-28 13:23:31 -07:00
.github website: resolve unlinked content (#10087) 2021-04-23 10:51:13 -04:00
acl acl: remove t.Parallel 2020-11-17 12:37:02 -05:00
agent Support Incremental xDS mode (#9855) 2021-04-29 13:54:05 -05:00
api Rename "cluster" config entry to "mesh" (#10127) 2021-04-28 16:13:29 -06:00
bench
build-support connect: update centralized upstreams representation in service-defaults (#10015) 2021-04-15 14:21:44 -05:00
command Support Incremental xDS mode (#9855) 2021-04-29 13:54:05 -05:00
connect connect/proxy: fix a number of problems with Listener 2021-04-28 17:21:35 -04:00
contributing contributing: add a quick doc on adding new streaming topics. 2021-04-01 17:19:59 -04:00
demo demo: Added udp port forwarding 2018-05-30 13:56:56 +09:00
grafana add readme outlining how to edit and publish 2021-01-12 14:47:11 -08:00
internal state: add a regression test for state store schema 2021-01-15 18:49:55 -05:00
ipaddr Ensure Consul is IPv6 compliant (#5468) 2019-06-04 10:02:38 -04:00
lib lib/ttlcache: never decrease the expiry on update 2021-04-21 15:32:26 -04:00
logging Support Incremental xDS mode (#9855) 2021-04-29 13:54:05 -05:00
proto connect: update centralized upstreams representation in service-defaults (#10015) 2021-04-15 14:21:44 -05:00
sdk Implement traffic redirection exclusion based on proxy config and user-provided values (#10134) 2021-04-29 09:21:15 -07:00
sentinel Allow users to configure either unstructured or JSON logging (#7130) 2020-01-28 17:50:41 -06:00
service_os Changes made : 2018-06-28 21:18:14 -04:00
snapshot testing: skip slow tests with -short 2020-12-07 13:42:55 -05:00
terraform terraform: remove modules in repo (#5085) 2019-04-04 16:31:43 -07:00
test Support Incremental xDS mode (#9855) 2021-04-29 13:54:05 -05:00
testrpc add testrpc.WaitForServiceIntentions to help unflake tests that manipulate intentions (#8867) 2020-10-07 14:20:25 -05:00
tlsutil tlsutil: fix a test for go1.16 2021-04-13 13:31:20 -04:00
types Move RPC router from Client/Server and into BaseDeps (#8559) 2020-08-27 11:23:52 -04:00
ui ui: Add a max height and scroll to the intention perm header lists (#10128) 2021-04-29 10:41:26 +01:00
vendor mod: bump to github.com/hashicorp/mdns v1.0.4 (#10018) 2021-04-14 14:17:52 -05:00
version changelog: add 1.9.1 entries (#9486) 2021-01-04 11:54:26 -05:00
website Improve doc: add note about address validation (#10123) 2021-04-29 13:37:50 -04:00
.dockerignore Update the scripting 2018-06-14 21:42:47 -04:00
.gitattributes
.gitignore website: remove netlify artifacts and port missing redirects over to new format (#9601) 2021-01-21 10:16:17 -05:00
.golangci.yml xds: remove deprecated usages of xDS (#9602) 2021-02-22 15:00:15 -06:00
.hashibot.hcl hashibot: let hashibot help us more (#7281) 2020-02-19 15:30:27 +01:00
CHANGELOG.md chore: sync changelog entries back from 1.10.0-beta1, 1.9.5, 1.8.10, 1.7.14 (#10054) 2021-04-16 10:53:01 -05:00
GNUmakefile connect: connect CA Roots in the primary datacenter should use a SigningKeyID derived from their local intermediate (#9428) 2021-02-08 13:18:51 -06:00
INTERNALS.md Add contributing dir with Config file checklist (#7017) 2020-01-14 12:24:03 +00:00
LICENSE
NOTICE.md add copyright notice file 2018-07-09 10:58:26 -07:00
README.md Added docs link to Learn tutorial for Kind. (#8610) 2020-09-11 17:03:35 -04:00
Vagrantfile
codecov.yml Update all the references in CI and makefile to the bindata file location 2020-10-01 16:19:10 +01:00
go.mod Support Incremental xDS mode (#9855) 2021-04-29 13:54:05 -05:00
go.sum vendor: commit changes from update-vendor 2021-04-16 14:31:56 -04:00
main.go Add Revision to version CLI output and add JSON support 2020-07-08 16:32:46 -04:00
main_test.go
package-lock.json Add Algolia indexing to CI 2020-06-29 12:14:43 -04:00

README.md

Consul CircleCI Discuss

Consul is a distributed, highly available, and data center aware solution to connect and configure applications across dynamic, distributed infrastructure.

Consul provides several key features:

  • Multi-Datacenter - Consul is built to be datacenter aware, and can support any number of regions without complex configuration.

  • Service Mesh/Service Segmentation - Consul Connect enables secure service-to-service communication with automatic TLS encryption and identity-based authorization. Applications can use sidecar proxies in a service mesh configuration to establish TLS connections for inbound and outbound connections without being aware of Connect at all.

  • Service Discovery - Consul makes it simple for services to register themselves and to discover other services via a DNS or HTTP interface. External services such as SaaS providers can be registered as well.

  • Health Checking - Health Checking enables Consul to quickly alert operators about any issues in a cluster. The integration with service discovery prevents routing traffic to unhealthy hosts and enables service level circuit breakers.

  • Key/Value Storage - A flexible key/value store enables storing dynamic configuration, feature flagging, coordination, leader election and more. The simple HTTP API makes it easy to use anywhere.

Consul runs on Linux, Mac OS X, FreeBSD, Solaris, and Windows. A commercial version called Consul Enterprise is also available.

Please note: We take Consul's security and our users' trust very seriously. If you believe you have found a security issue in Consul, please responsibly disclose by contacting us at security@hashicorp.com.

Quick Start

A few quick start guides are available on the Consul website:

Documentation

Full, comprehensive documentation is available on the Consul website:

https://www.consul.io/docs

Contributing

Thank you for your interest in contributing! Please refer to CONTRIBUTING.md for guidance.